#VU82817 Incorrect permission assignment for critical resource in Salt - CVE-2022-22941


Vulnerability identifier: #VU82817

Vulnerability risk: Medium

CVSSv4.0: 6.2 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:N/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2022-22941

CWE-ID: CWE-732

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Salt
Web applications / Remote management & hosting panels

Vendor: SaltStack

Description

The vulnerability allows a remote user to compromise third-party minions.

The vulnerability exists due to improper permissions checks. A remote user can target any minion connected to the Syndic when configured as a Master-of-Masters, bypass publisher_acl and execute on any configured minion.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Salt: 3002 - 3002.7, 3003 - 3003.3, 3004

External links
https://saltproject.io/security_announcements/salt-security-advisory-release/
https://security.gentoo.org/glsa/202310-22

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Gentoo update for Salt
SUSE update for Security Beta update for SUSE Manager Client Tools
SUSE update for Security Beta update for SUSE Manager Salt Bundle
SUSE update for Security Beta update for SUSE Manager Salt Bundle
SUSE update for Security Beta update for SUSE Manager Salt Bundle
SUSE update for Security Beta update for SUSE Manager Salt Bundle
SUSE update for Security Beta update for SUSE Manager Salt Bundle
SUSE update for Security Beta update for SUSE Manager Client Tools
SUSE update for Security Beta update for SUSE Manager Client Tools
SUSE update for Security Beta update for SUSE Manager Client Tools